Linux Kernel St_LSM6DSX IMU Device Lockup Vulnerability
CVE-2025-37970

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
20 May 2025

What is CVE-2025-37970?

A vulnerability in the Linux kernel's st_lsm6dsx IMU driver can lead to an infinite loop scenario when the pattern length is set to zero while the device FIFO is not empty. This could cause significant delays or lockups, impacting system stability. The issue has been addressed to ensure that the function st_lsm6dsx_read_fifo operates as intended, preventing potential disruptions in critical applications dependent on this driver.

Affected Version(s)

Linux 290a6ce11d938be52634b3ce1bbc6b78be4d23c1

Linux 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 < 84e39f628a3a3333add99076e4d6c8b42b12d3a0

Linux 290a6ce11d938be52634b3ce1bbc6b78be4d23c1

References

https://git.kernel.org/stable/c/f06a1a1954527cc4ed086d926...
https://git.kernel.org/stable/c/84e39f628a3a3333add99076e...
https://git.kernel.org/stable/c/f3cf233c946531a92fe651ff2...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-37970 : Linux Kernel St_LSM6DSX IMU Device Lockup Vulnerability